$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa File: B70BB8BA0BEE11F1B88CA9ED363D8C67.roa (raw, json) Hash identifier: gV/ga6pNiDEaMqYwxdpiqSmurLeCeq3zgA8Tgp7bxMk= Subject key identifier: BE:D5:BC:26:D3:65:6D:2A:D6:44:BF:A4:76:2E:C6:A7:77:52:AD:8E Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Certificate serial: 0D86 Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa Signing time: Mon 20 Apr 2026 18:22:56 +0000 ROA not before: Mon 20 Apr 2026 18:22:56 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138638 IP address blocks: 103.135.88.0/24 maxlen: 24 103.135.89.0/24 maxlen: 24 2404:7840::/32 maxlen: 32 2404:7840::/48 maxlen: 48 2404:7840:1::/48 maxlen: 48 2404:7840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5308, serialNumber=7B59055212849105AD6F39E5881D842E707439AF Validity Not Before: Apr 20 18:22:56 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e66f00-db4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:6b:16:ed:fe:d4:0c:d1:cb:64:28:25:a4: 28:fa:f7:4b:3a:ae:a4:8b:5e:e5:86:7a:03:e3:27: 7c:4e:77:32:27:a4:f3:aa:21:13:a6:8a:0c:22:53: 40:21:58:a7:00:41:38:80:a5:bc:d5:f8:ca:26:75: e4:fc:00:0a:b8:54:bd:5f:03:4a:64:fd:59:84:a9: 12:a8:f3:8d:41:8b:c7:7a:05:10:87:ea:da:c4:25: 20:cc:20:c5:28:44:ef:95:53:00:a5:94:52:4f:99: a7:09:94:aa:0c:f5:3a:c5:df:0e:96:42:5b:77:70: 9b:db:2b:03:ed:d8:ae:a9:ec:83:ac:d0:51:13:e6: 7f:b1:95:f9:1a:40:9e:66:e3:79:c2:6e:d7:bf:19: 90:63:e0:9c:25:05:66:ba:0c:a7:b5:79:aa:53:fd: 71:5c:3f:75:cd:ee:d3:13:b7:59:34:08:bb:02:61: 4f:68:00:61:76:6d:5c:a0:d0:a8:e8:54:60:83:7e: f9:1d:22:26:d3:65:a0:8f:7a:00:54:96:df:86:76: 10:45:42:1a:85:2b:6e:48:c3:89:27:d5:f0:e1:24: e0:88:b4:42:11:6c:2e:24:a7:07:95:c9:e1:da:3f: 5a:ab:2c:43:22:f4:93:db:68:58:eb:a2:69:b4:77: af:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D5:BC:26:D3:65:6D:2A:D6:44:BF:A4:76:2E:C6:A7:77:52:AD:8E X509v3 Authority Key Identifier: keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/B70BB8BA0BEE11F1B88CA9ED363D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.135.88.0/23 IPv6: 2404:7840::/32 Signature Algorithm: sha256WithRSAEncryption e8:92:84:9e:28:43:be:42:cd:a7:dd:7f:bd:f6:b8:43:d5:43: 50:4f:2a:10:16:1f:d9:39:9d:ba:a0:33:7d:14:35:d2:8d:23: b6:29:d9:bc:4e:da:b1:0d:1a:3a:88:24:e5:37:ff:40:dd:79: 41:5b:37:f1:aa:59:22:10:72:fd:1c:b9:18:df:22:9d:1c:a5: 37:cb:c8:e0:48:d7:8f:2f:6f:56:c0:78:cc:28:01:73:01:7b: a7:45:fb:b6:10:ef:1b:e2:ab:63:a3:ec:3c:3e:89:0c:9c:84: ca:f7:ea:7d:f0:7a:da:19:81:db:31:ce:a2:de:9f:f8:3c:84: 33:ca:7f:d6:87:01:ac:ea:42:95:13:a6:6a:ad:a7:0e:a2:ce: fc:d1:57:c8:6c:96:f4:3a:98:54:66:23:08:3a:97:a1:48:99: b3:f0:c3:83:e7:86:97:f1:bb:b5:4f:05:28:81:a9:99:99:f7: 3b:b1:1a:84:4f:be:cd:b7:3f:a4:36:8f:b4:6a:1e:17:a7:70: 90:40:d5:89:7a:28:f8:12:25:5c:58:d1:f2:f2:73:d3:59:91: 66:99:9e:d4:b2:d1:87:42:1e:fe:da:b6:6e:cc:e5:89:e9:d0: 5c:50:4b:b5:c3:25:9f:1e:95:52:e3:e3:ee:54:0b:5f:0a:3e: c2:7b:48:91 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMDgxMTAvBgNVBAUTKDdCNTkwNTUyMTI4NDkxMDVBRDZGMzlFNTg4MUQ4NDJF NzA3NDM5QUYwHhcNMjYwNDIwMTgyMjU2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NmYwMC1kYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QZrFu3+1AzRy2QoJaQo+vdLOq6ki17lhnoD4yd8TncyJ6TzqiETpooMIlNA IVinAEE4gKW81fjKJnXk/AAKuFS9XwNKZP1ZhKkSqPONQYvHegUQh+raxCUgzCDF KETvlVMApZRST5mnCZSqDPU6xd8OlkJbd3Cb2ysD7diuqeyDrNBRE+Z/sZX5GkCe ZuN5wm7XvxmQY+CcJQVmugyntXmqU/1xXD91ze7TE7dZNAi7AmFPaABhdm1coNCo 6FRgg375HSIm02Wgj3oAVJbfhnYQRUIahStuSMOJJ9Xw4STgiLRCEWwuJKcHlcnh 2j9aqyxDIvST22hY66JptHev3QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFL7VvCbT ZW0q1kS/pHYuxqd3Uq2OMB8GA1UdIwQYMBaAFHtZBVIShJEFrW855YgdhC5wdDmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMwOC9BODE5MTRFMkY0 RDUxMUU5QjkxN0YzNDlDNEY5QUUwMi9lMWtGVWhLRWtRV3Riem5saUIyRUxuQjBP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Uxa0ZVaEtFa1FXdGJ6bmxpQjJFTG5CME9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMDgvQTgxOTE0RTJGNEQ1MTFFOUI5MTdGMzQ5QzRGOUFFMDIvQjcwQkI4QkEw QkVFMTFGMUI4OENBOUVEMzYzRDhDNjcucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4dYMA0EAgACMAcDBQAkBHhAMA0GCSqGSIb3DQEBCwUAA4IBAQDo koSeKEO+Qs2n3X+99rhD1UNQTyoQFh/ZOZ26oDN9FDXSjSO2Kdm8TtqxDRo6iCTl N/9A3XlBWzfxqlkiEHL9HLkY3yKdHKU3y8jgSNePL29WwHjMKAFzAXunRfu2EO8b 4qtjo+w8PokMnITK9+p98HraGYHbMc6i3p/4PIQzyn/WhwGs6kKVE6ZqracOos78 0VfIbJb0OphUZiMIOpehSJmz8MOD54aX8bu1TwUogamZmfc7sRqET77Ntz+kNo+0 ah4Xp3CQQNWJeij4EiVcWNHy8nPTWZFmmZ7UstGHQh7+2rZuzOWJ6dBcUEu1wyWf HpVS4+PuVAtfCj7Ce0iR -----END CERTIFICATE-----Generated at Wed May 13 06:23:54 2026 by rpki-client